shinys000114/libssh
1
0
Fork 0
mirror of https://git.libssh.org/projects/libssh.git synced 2026-02-04 12:20:42 +09:00
Code Issues Packages Projects Releases Wiki Activity
5,543 Commits 12 Branches 62 Tags
346e6db31824571727c0fb76bb5747d7e9a28f89
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Carlos Martín Nieto 346e6db318 packet: do not enqueue outgoing packets after sending SSH2_MSG_NEWKEYS 
When we decide we need to rekey, we enqueue any further packets until we've sent
our SSH2_MSG_NEWKEYS message, after which we dequeue these packets and send them
to the other side. This enqueueing is done based on ssh_packet_in_rekey checking
the session flags and whether DH handshake state is marked as finished.

However, the handshake state is not reset to DH_STATE_FINISHED until the other
side has sent us their new keys. This leaves a gap between sending our new keys
and receiving the other side's new keys where we would still decide to enqueue a
packet.

These enqueued packets will not be dequeued as we've already sent our new keys.
Once we've received the other side's new keys, we'll go back to a finished
handshake and we will send out our caller's new data, skipping however much data
we've enqueued.

Fix this by changing ssh_packet_in_rekey to return false once we've sent our new
keys.

Signed-off-by: Carlos Martín Nieto <carlosmn@github.com>
Reviewed-by: Jakub Jelen <jjelen@redhat.com>
2022-10-07 10:26:38 +02:00
cmake
Implement code coverage collection
2022-08-25 14:53:58 +02:00
doc
Remove remaining mentions of SSH-v1 protocol
2022-06-09 09:08:02 +02:00
examples
examples: Fix dereference after NULL check (CID 1461477)
2022-08-25 14:54:00 +02:00
include
libssh.h: Update loglevel doc
2022-10-07 09:13:19 +02:00
src
packet: do not enqueue outgoing packets after sending SSH2_MSG_NEWKEYS
2022-10-07 10:26:38 +02:00
tests
torture_auth.c: Reword whitelist to allowlist
2022-10-07 09:08:40 +02:00
.arcconfig
arcconfig: Add missing comma
2017-08-21 09:12:36 +02:00
.clang-format
Try to describe our coding style using clang-format
2022-07-19 16:06:43 +02:00
.editorconfig
Fix editorconfig
2022-05-23 10:14:18 +02:00
.gitignore
Try to describe our coding style using clang-format
2022-07-19 16:06:43 +02:00
.gitlab-ci.yml
ci: Add apline linux target
2022-08-30 15:39:49 +02:00
.gitleaks.toml
Add gitleaks configuration file to avoid false positives
2022-08-08 10:14:53 +02:00
AUTHORS
src: Update my mail address.
2014-01-07 16:08:23 +01:00
BSD
added a file from openssh needed for known host parsing
2008-11-02 23:46:55 +00:00
CHANGELOG
Bump version to 0.10.0
2022-07-07 15:27:23 +02:00
CMakeLists.txt
cmake: Fix pkgconfig path relocation in mingw
2022-09-22 12:38:12 +02:00
CompilerChecks.cmake
Don't set "-fstack-clash-protection" option on Windows
2022-06-08 09:06:42 +02:00
config.h.cmake
cmake: Check for weak attribute
2022-08-30 19:47:07 +02:00
ConfigureChecks.cmake
cmake: Check for weak attribute
2022-08-30 19:47:07 +02:00
CONTRIBUTING.md
trivial fix: Fixes some spelling errors
2022-04-19 15:55:49 +02:00
COPYING
COPYING: Reformat the last paragraph
2018-11-17 20:11:51 +01:00
CPackConfig.cmake
cpack: Do not package .cache directory used by clangd
2021-08-26 14:58:38 +02:00
CTestConfig.cmake
cmake: Drop reports via https only.
2015-02-20 15:47:22 +01:00
DefineOptions.cmake
ConfigureChecks.cmake: Disable HAVE_DSA by default (when mbedTLS is not enabled)
2020-09-02 14:35:43 +02:00
INSTALL
Bump minimum version requirement for OpenSSL
2020-12-22 09:15:38 +01:00
libssh.pc.cmake
cmake: Fix pkgconfig path relocation in mingw
2022-09-22 12:38:12 +02:00
README
README: Mention CONTRIBUTING not SubmittingPatches
2020-09-29 13:05:34 +02:00
README.mbedtls
pki: Add mbedTLS ECDSA key comparison support
2018-03-07 15:44:05 +01:00
README.md
README: Mention CONTRIBUTING not SubmittingPatches
2020-09-29 13:05:34 +02:00

README.md

pipeline status Fuzzing Status

  _   _   _                          _
 (_) (_) (_)                        (_)
 (_)  _  (_) _         _  _   _  _  (_) _
 (_) (_) (_)(_) _     (_)(_) (_)(_) (_)(_) _
 (_) (_) (_)   (_)  _ (_)  _ (_)    (_)   (_)
 (_) (_) (_)(_)(_) (_)(_) (_)(_)    (_)   (_).org

 The SSH library

Why?

Why not ? :) I've began to work on my own implementation of the ssh protocol because i didn't like the currently public ones. Not any allowed you to import and use the functions as a powerful library, and so i worked on a library-based SSH implementation which was non-existing in the free and open source software world.

How/Who?

If you downloaded this file, you must know what it is : a library for accessing ssh client services through C libraries calls in a simple manner. Everybody can use this software under the terms of the LGPL - see the COPYING file

If you ask yourself how to compile libssh, please read INSTALL before anything.

Where ?

https://www.libssh.org

Contributing

Please read the file 'CONTRIBUTING.md' next to this README file. It explains our copyright policy and how you should send patches for upstream inclusion.

Have fun and happy libssh hacking!

The libssh Team

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 15 MiB
Languages
C 95.3%
CMake 4.1%
C++ 0.4%
Shell 0.2%